Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Everything visible except ASA

Hello,

I have configured 2x ASA 5512X in failover mode. My problem is that I cannot access ASA (ping,ssh,asdm - nothing) via any other vlan except INSIDE.

For example, from vlan named "VLAN" (10.1.3.0/24) I can access any device from "INSIDE" (10.1.1.0/24) except ASA (IP: 10.1.1.1).

Of course, from "INSIDE" I can access ASA without any problems.

Configuration is enclosed under attachments. Did I miss something obvious in the configuration?

Thank you for your suggestions.

1 REPLY
Super Bronze

Re: Everything visible except ASA

Hi,

If I understood you correctly, you are trying to access the "INSIDE" interface IP address from a network that is located behind some other interface than "INSIDE"?

If this is true then its expected behaviour.

You will not be able to connect to the ASA interface IP address from anywhere else other than from a network that is located behind that interface.

So if you want to manage the ASA you will have to connect to the IP address of the interface closest to that network.

So network 10.1.3.0/24 will need to access the ASA using the IP address 10.1.3.1 and 10.1.3.2 if you need to access the Standby device.

Hope this helps

- Jouni

108
Views
0
Helpful
1
Replies
CreatePlease to create content